| 1 |
salut, |
| 2 |
|
| 3 |
j'ai installé vsftp, et je n'arrive pas à le faire marcher. |
| 4 |
A chaque tentative de connexion , à la seconde ou j'essaie de connecter |
| 5 |
voilà ce que j'ai : |
| 6 |
|
| 7 |
ncftp>open -u 192.168.0.157 |
| 8 |
Username at 192.168.0.157: ***** |
| 9 |
Remote host has closed the |
| 10 |
connection. |
| 11 |
Sleeping 20 seconds... |
| 12 |
|
| 13 |
Par contre |
| 14 |
open localhost |
| 15 |
--> ca ca marche nickel. |
| 16 |
|
| 17 |
Le cas "closed the connection" je l'ai si j'essaie depuis un autre PC |
| 18 |
sur le LAN, ou sur le PC qui héberge vsftp lui même, ou en login |
| 19 |
anonyme. |
| 20 |
Notez qu'en login avec username : j'ai même pas le temps de sisir mon |
| 21 |
mot de passe ! |
| 22 |
|
| 23 |
J'ai regardé vsftpd.conf il m'a l'air correct, |
| 24 |
Le fichier de log /var/log/vsftpd/vsftpd.log ne dit RIEN sur les |
| 25 |
tentatives foireuses, par contre trace les login "localhost" |
| 26 |
correctement. |
| 27 |
|
| 28 |
J'ai bien autorisé les ports qu'il faut sur mon routeur, d'ailleurs ca |
| 29 |
fonctionnait très bien avec le vsftpd livré avec la redhat 9 que j'ai |
| 30 |
testé avant. |
| 31 |
|
| 32 |
Si qqun a une idée... je joins mes fihciers de conf : |
| 33 |
|
| 34 |
#vsftpd.conf |
| 35 |
# $Header: /home/cvsroot/gentoo-x86/net-ftp/vsftpd/files/vsftpd.conf,v |
| 36 |
1.2 2002/05/04 03:42:50 woodchip Exp $ |
| 37 |
|
| 38 |
# Allow anonymous FTP? |
| 39 |
#anonymous_enable=YES |
| 40 |
|
| 41 |
# Uncomment this to allow local users to log in. |
| 42 |
local_enable=YES |
| 43 |
|
| 44 |
# Uncomment this to enable any form of FTP write command. |
| 45 |
write_enable=YES |
| 46 |
|
| 47 |
# Default umask for local users is 077. You may wish to change this to |
| 48 |
022, |
| 49 |
# if your users expect that (022 is used by most other ftpd's) |
| 50 |
local_umask=022 |
| 51 |
|
| 52 |
# Uncomment this to allow the anonymous FTP user to upload files. This |
| 53 |
only |
| 54 |
# has an effect if the above global write enable is activated. Also, you |
| 55 |
will |
| 56 |
# obviously need to create a directory writable by the FTP user. |
| 57 |
#anon_upload_enable=YES |
| 58 |
|
| 59 |
# Uncomment this if you want the anonymous FTP user to be able to create |
| 60 |
# new directories. |
| 61 |
#anon_mkdir_write_enable=YES |
| 62 |
|
| 63 |
# Activate directory messages - messages given to remote users when they |
| 64 |
# go into a certain directory. |
| 65 |
dirmessage_enable=YES |
| 66 |
|
| 67 |
# Make sure PORT transfer connections originate from port 20 (ftp-data). |
| 68 |
connect_from_port_20=YES |
| 69 |
|
| 70 |
# If you want, you can arrange for uploaded anonymous files to be owned |
| 71 |
by |
| 72 |
# a different user. Note! Using "root" for uploaded files is not |
| 73 |
# recommended! |
| 74 |
chown_uploads=YES |
| 75 |
chown_username=lenny |
| 76 |
|
| 77 |
# Activate logging of uploads/downloads. |
| 78 |
xferlog_enable=YES |
| 79 |
|
| 80 |
# If you want, you can have your log file in standard ftpd xferlog |
| 81 |
format |
| 82 |
#xferlog_std_format=YES |
| 83 |
|
| 84 |
# You may override where the log file goes if you like. The default is |
| 85 |
shown |
| 86 |
# below. |
| 87 |
xferlog_file=/var/log/vsftpd/vsftpd.log |
| 88 |
|
| 89 |
# You may change the default value for timing out an idle session. |
| 90 |
#idle_session_timeout=600 |
| 91 |
|
| 92 |
# You may change the default value for timing out a data connection. |
| 93 |
#data_connection_timeout=120 |
| 94 |
|
| 95 |
# It is recommended that you define on your system a unique user which |
| 96 |
the |
| 97 |
# ftp server can use as a totally isolated and unprivileged user. |
| 98 |
nopriv_user=ftp |
| 99 |
|
| 100 |
# Enable this and the server will recognise asynchronous ABOR requests. |
| 101 |
Not |
| 102 |
# recommended for security (the code is non-trivial). Not enabling it, |
| 103 |
# however, may confuse older FTP clients. |
| 104 |
#async_abor_enable=YES |
| 105 |
|
| 106 |
# By default the server will pretend to allow ASCII mode but in fact |
| 107 |
ignore |
| 108 |
# the request. Turn on the below options to have the server actually do |
| 109 |
ASCII |
| 110 |
# mangling on files when in ASCII mode. |
| 111 |
# Beware that turning on ascii_download_enable enables malicious remote |
| 112 |
parties |
| 113 |
# to consume your I/O resources, by issuing the command "SIZE /big/file" |
| 114 |
in |
| 115 |
# ASCII mode. |
| 116 |
# These ASCII options are split into upload and download because you may |
| 117 |
wish |
| 118 |
# to enable ASCII uploads (to prevent uploaded scripts etc. from |
| 119 |
breaking), |
| 120 |
# without the DoS risk of SIZE and ASCII downloads. ASCII mangling |
| 121 |
should be |
| 122 |
# on the client anyway.. |
| 123 |
#ascii_upload_enable=YES |
| 124 |
#ascii_download_enable=YES |
| 125 |
|
| 126 |
# You may fully customise the login banner string: |
| 127 |
ftpd_banner=[...Welcome to the Vault...] |
| 128 |
|
| 129 |
# You may specify a file of disallowed anonymous e-mail addresses. |
| 130 |
Apparently |
| 131 |
# useful for combatting certain DoS attacks. |
| 132 |
#deny_email_enable=YES |
| 133 |
# (default follows) |
| 134 |
|
| 135 |
|
| 136 |
# You may specify an explicit list of local users to chroot() to their |
| 137 |
home |
| 138 |
# directory. If chroot_local_user is YES, then this list becomes a list |
| 139 |
of |
| 140 |
# users to NOT chroot(). |
| 141 |
#chroot_list_enable=YES |
| 142 |
# (default follows) |
| 143 |
#chroot_list_file=/etc/vsftpd/vsftpd.chroot_list |
| 144 |
|
| 145 |
# You may activate the "-R" option to the builtin ls. This is disabled |
| 146 |
by |
| 147 |
# default to avoid remote users being able to cause excessive I/O on |
| 148 |
large |
| 149 |
# sites. However, some broken FTP clients such as "ncftp" and "mirror" |
| 150 |
assume |
| 151 |
# the presence of the "-R" option, so there is a strong case for |
| 152 |
enabling it. |
| 153 |
ls_recurse_enable=YES |
| 154 |
#enabling daemon mode from init.d |
| 155 |
background=YES |
| 156 |
|
| 157 |
|
| 158 |
|
| 159 |
|
| 160 |
|
| 161 |
|
| 162 |
#/etc/xinetd.d/vsftpd |
| 163 |
service ftp |
| 164 |
{ |
| 165 |
socket_type = stream |
| 166 |
wait = no |
| 167 |
user = root |
| 168 |
server = /usr/sbin/vsftpd |
| 169 |
server_args = /etc/vsftpd/vsftpd.conf |
| 170 |
log_on_success += DURATION USERID |
| 171 |
log_on_failure += USERID |
| 172 |
nice = 10 |
| 173 |
# disable = yes |
| 174 |
} |
| 175 |
|
| 176 |
|
| 177 |
#et le /etc/pam.d/vsftpd |
| 178 |
#%PAM-1.0 |
| 179 |
# $Header: /home/cvsroot/gentoo-x86/net-ftp/vsftpd/files/vsftpd.pam,v |
| 180 |
#1.3 2002/10/19 06:45:57 woodchip Exp $ |
| 181 |
auth required /lib/security/pam_listfile.so item=user sense=deny |
| 182 |
file=/etc/vsftpd/ftpusers onerr=succeed |
| 183 |
auth required /lib/security/pam_stack.so service=system-auth |
| 184 |
auth required /lib/security/pam_shells.so |
| 185 |
account required /lib/security/pam_stack.so service=system-auth |
| 186 |
session required /lib/security/pam_stack.so service=system-auth |
| 187 |
~ |
| 188 |
|
| 189 |
|
| 190 |
|
| 191 |
-- |
| 192 |
gentoo-user-fr@g.o mailing list |
Archives